1 Topic by dcihon

  • dcihon
  • Member
  • Offline
  • Registered: 2013-11-11
  • Posts: 97

Topic: Messages in postfix log

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 1.1
- Deployed with iRedMail Easy or the downloadable installer? download installer
- Linux/BSD distribution name and version: debian buster
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx): nginx
- Manage mail accounts with iRedAdmin-Pro? no
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====
I am seeing the following from several different IP's and wondering where to block this at?
Should I use UFW or Fail2ban?

warning: unknown[188.162.199.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by Cthulhu

  • Cthulhu
  • Member
  • Offline
  • Registered: 2019-06-04
  • Posts: 907

Re: Messages in postfix log

fail2ban blocks this already

3 Reply by dcihon

  • dcihon
  • Member
  • Offline
  • Registered: 2013-11-11
  • Posts: 97

Re: Messages in postfix log

So should I be seeing this message in the log?

4 Reply by Cthulhu

  • Cthulhu
  • Member
  • Offline
  • Registered: 2019-06-04
  • Posts: 907

Re: Messages in postfix log

fail2ban bans by those messages

5 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 31,082

Re: Messages in postfix log

Please check Fail2ban log file to figure it out.